Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
File: 3keU2fyrI-wF3d1QSKP8cgQAKio.mft (raw, json)
Hash identifier: cfKQuBKcytNJ6gfgQjQIl6xhbAo+YkwowlaeHYkKHhY=
Subject key identifier: DB:DE:07:10:F0:2E:60:52:D0:D2:61:1E:07:0D:7F:C8:C7:F7:45:94
Authority key identifier: DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
Certificate issuer: /CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Certificate serial: 019E30A9A45CAF0EFC37A9417BC3314BC499
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
Manifest number: 123F
Signing time: Sat 16 May 2026 12:01:24 +0000
Manifest this update: Sat 16 May 2026 12:01:24 +0000
Manifest next update: Sun 17 May 2026 12:01:24 +0000
Files and hashes: 1: 3keU2fyrI-wF3d1QSKP8cgQAKio.crl (hash: W7e2a4oCNdm42FNpQ4px6zIyMS6ujGoE4AYpp9+prlc=)
2: kZWW_ntfYvdgmDKHXouZXpr8UMU.roa (hash: pybDSm/TxiDymAX06iB+SSYkpRn7EWk4DKtBzvh17SE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:a4:5c:af:0e:fc:37:a9:41:7b:c3:31:4b:c4:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Validity
Not Before: May 16 12:01:24 2026 GMT
Not After : May 17 12:01:24 2026 GMT
Subject: CN=dbde0710f02e6052d0d2611e070d7fc8c7f74594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:98:84:64:7e:24:5c:34:b1:71:16:1a:e3:84:
a4:e8:7a:c8:de:08:30:79:3f:4b:dc:70:1e:b9:76:
59:e2:e7:f6:1e:49:3c:22:6d:8f:a9:5f:97:77:8c:
d8:d6:f3:18:4e:53:cf:04:06:1b:9a:dc:cd:7b:50:
d9:88:d2:0d:3a:9f:f1:31:df:f9:72:51:98:1d:53:
6a:56:90:b2:fe:ad:de:a5:89:e7:c4:17:3f:3d:05:
33:c7:c5:d3:bc:7e:d5:e0:f5:94:ee:fd:c0:62:bc:
e4:65:cb:73:33:a8:0d:c9:c0:bd:43:6f:1a:6a:86:
66:3f:0e:c7:44:03:a0:6d:c1:dc:6e:7f:2e:e8:ab:
b8:39:59:ea:7e:e9:2c:a8:55:f2:f2:c4:2d:65:5c:
ff:e9:01:bf:0b:f8:a6:b7:26:67:4b:bd:c0:ce:0b:
db:76:db:52:37:ff:b8:e3:75:c6:b2:31:a0:60:41:
ec:ef:b0:17:1e:42:8b:4a:b3:e3:1c:bd:0e:b6:51:
e1:5e:3a:76:76:2d:91:a3:11:30:46:e8:bd:7f:94:
8b:44:a1:95:80:78:67:69:35:72:48:9d:03:9e:f0:
9e:0f:10:9b:a8:69:97:80:3c:42:f3:ed:5d:a9:9e:
ba:fe:6b:68:e7:14:fc:98:02:60:60:f3:63:79:3d:
cf:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:DE:07:10:F0:2E:60:52:D0:D2:61:1E:07:0D:7F:C8:C7:F7:45:94
X509v3 Authority Key Identifier:
keyid:DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:4b:6c:59:c1:9b:48:79:e1:22:2a:96:95:bd:52:89:cd:52:
74:ea:c4:0f:5e:3b:ab:04:f6:f2:4a:6d:f1:c6:ce:6f:70:bd:
fa:93:fb:7f:61:76:4c:3c:e3:37:4e:19:d7:f3:6c:8c:e6:12:
d9:8e:a4:af:e3:d1:04:58:74:b8:ee:74:72:d5:95:b6:97:af:
94:5c:55:d5:03:f6:6c:f1:6f:99:32:37:75:8f:99:d4:70:27:
6a:7b:08:c8:d8:9d:2d:a9:67:81:3f:86:81:0f:94:05:c8:19:
8d:4c:ce:2e:a2:b7:0d:32:c9:fd:71:56:f6:c6:d5:e7:3a:88:
58:ea:c6:59:31:fd:4a:04:76:43:ea:49:fa:52:53:d1:41:f0:
02:cf:e6:03:2b:8c:96:10:14:6c:33:e8:67:ba:0f:fe:5c:c0:
35:66:9a:98:4d:0e:c1:b4:ef:83:01:e8:5d:33:25:af:7b:08:
27:9c:a7:01:a0:c5:68:f8:89:7b:38:d4:3e:5d:db:48:41:94:
b1:ac:6a:f5:88:75:34:b0:99:49:5b:16:78:4e:0b:1f:3f:88:
e3:4f:bb:ed:74:5e:90:60:a4:46:81:34:12:22:b6:12:a7:df:
6c:41:5b:0f:35:6f:49:15:20:fe:86:52:e2:0d:10:c0:9a:ce:
60:b2:b9:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wqaRcrw78N6lBe8MxS8SZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlNDc5NGQ5ZmNhYjIzZWMwNWRkZGQ1MDQ4YTNmYzcyMDQw
MDJhMmEwHhcNMjYwNTE2MTIwMTI0WhcNMjYwNTE3MTIwMTI0WjAzMTEwLwYDVQQD
EyhkYmRlMDcxMGYwMmU2MDUyZDBkMjYxMWUwNzBkN2ZjOGM3Zjc0NTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJiEZH4kXDSxcRYa44Sk6HrI3ggw
eT9L3HAeuXZZ4uf2Hkk8Im2PqV+Xd4zY1vMYTlPPBAYbmtzNe1DZiNINOp/xMd/5
clGYHVNqVpCy/q3epYnnxBc/PQUzx8XTvH7V4PWU7v3AYrzkZctzM6gNycC9Q28a
aoZmPw7HRAOgbcHcbn8u6Ku4OVnqfuksqFXy8sQtZVz/6QG/C/imtyZnS73Azgvb
dttSN/+443XGsjGgYEHs77AXHkKLSrPjHL0OtlHhXjp2di2RoxEwRui9f5SLRKGV
gHhnaTVySJ0DnvCeDxCbqGmXgDxC8+1dqZ66/mto5xT8mAJgYPNjeT3P+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNveBxDwLmBS0NJhHgcNf8jH90WUMB8GA1UdIwQY
MBaAFN5HlNn8qyPsBd3dUEij/HIEACoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDIt
ZjAxMTI5Mzk1M2Y1LzEvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDItZjAxMTI5Mzk1M2Y1
LzEvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdUtsWcGb
SHnhIiqWlb1Sic1SdOrED147qwT28kpt8cbOb3C9+pP7f2F2TDzjN04Z1/NsjOYS
2Y6kr+PRBFh0uO50ctWVtpevlFxV1QP2bPFvmTI3dY+Z1HAnansIyNidLalngT+G
gQ+UBcgZjUzOLqK3DTLJ/XFW9sbV5zqIWOrGWTH9SgR2Q+pJ+lJT0UHwAs/mAyuM
lhAUbDPoZ7oP/lzANWaamE0OwbTvgwHoXTMlr3sIJ5ynAaDFaPiJezjUPl3bSEGU
saxq9Yh1NLCZSVsWeE4LHz+I40+77XRekGCkRoE0EiK2EqffbEFbDzVvSRUg/oZS
4g0QwJrOYLK5/w==
-----END CERTIFICATE-----
Generated at Sat May 16 17:56:37 2026 by rpki-client